FortiWeb - Relative path traversal in web API

Summary

A path traversal vulnerability [CWE-23] in the API of FortiWeb may allow a unauthenticated attacker to retrieve specific parts of files from the underlying file system via specially crafted web requests.

Version Affected Solution
FortiWeb 7.0 7.0.0 through 7.0.1 Upgrade to 7.0.2 or above
FortiWeb 6.4 6.4 all versions Migrate to a fixed release
FortiWeb 6.3 6.3.0 through 6.3.19 Upgrade to 6.3.20 or above
FortiWeb 6.2 6.2 all versions Migrate to a fixed release
FortiWeb 6.1 6.1 all versions Migrate to a fixed release
FortiWeb 6.0 6.0 all versions Migrate to a fixed release

Acknowledgement

Internally discovered and reported by Théo Leleu of Fortinet Product Security team.